CVE-2026-48686

FastNetMon Community Edition through 1.2.9 contains a stack-based buffer overflow in the BGP NLRI Network Layer Reachability Information decoder. The function decodebgpsubnetencodingipv4raw in src/bgpprotocol.cpp reads prefixbitlength directly from the BGP packet line 99 without validating it is ...

CVE-2025-70123

An improper input validation and protocol compliance vulnerability in free5GC v4.0.1 allows remote attackers to cause a denial of service. The UPF incorrectly accepts a malformed PFCP Association Setup Request, violating 3GPP TS 29.244. This places the UPF in an inconsistent state where a...

Konica Bizhub Multifunction Printers Infinite Loop of Messages Between Servers (CVE-2024-2169)

Implementations of UDP application protocol are vulnerable to network loops. An unauthenticated attacker can use maliciously-crafted packets against a vulnerable implementation that can lead to Denial of Service DOS and/or abuse of resources. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc...

go-toolset:rhel8 security update

An update is available for module.go-toolset, golang, module.delve, go-toolset, module.golang, delve. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Go Toolset...

Siemens SIPROTEC 5 安全漏洞

Siemens SIPROTEC 5 is a multifunction relay from Siemens Germany. A security vulnerability exists in the Siemens SIPROTEC 5 that stems from an affected device not properly validating SNMP GET requests. This could allow an unauthenticated, remote attacker to retrieve sensitive information from the...

freeradius: forgery attack

A vulnerability in the RADIUS Remote Authentication Dial-In User Service protocol allows attackers to forge authentication responses when the Message-Authenticator attribute is not enforced. This issue arises from a cryptographically insecure integrity check using MD5, enabling attackers to spoof...

The vulnerability in the implementation of the Kerberos network protocol for Windows operating systems allows attackers to circumvent security restrictions.

The vulnerability of the Kerberos network protocol implementation in Windows operating systems is related to security configuration errors. Exploiting this vulnerability can allow a malicious actor to bypass security restrictions remotely...

SUSE-SU-2023:3632-1 Security update for the Linux Kernel (Live Patch 34 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059127 fixes several issues. The following security issues were fixed: - CVE-2023-2156: Fixed a flaw in the networking subsystem within the handling of the RPL protocol bsc1211395. - CVE-2023-3567: Fixed a use-after-free in vcsread in...

SUSE-SU-2023:3313-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-40982: Fixed transient execution attack called 'Gather Data Sampling' bsc1206418. - CVE-2023-0459: Fixed information leak in uaccessbeginnospec...

The vulnerability in the implementation of the PAPI network protocol for ArubaOS operating systems allows a hacker to execute arbitrary code.

The vulnerability of the PAPI network protocol implementation in ArubaOS lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

OpenJDK: missing SNI caching in HTTP/2 (Networking, 8289366)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Difficult to exploit vulnerabilit...

The vulnerability of the OSPFv3 network protocol implementation in Cisco NX-OS network operating systems allows a attacker to cause a service failure.

The vulnerability of the OSPFv3 network protocol implementation in Cisco NX-Os network operating systems involves a lack of checks for buffer size and reading beyond the memory limit. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...

Siemens SIMATIC 安全特征问题漏洞

The LOGO! CMR family is a communication system for monitoring and controlling distributed devices and systems via text messages or e-mail.Siemens SIMATIC RTU3000C is a compact RTU from Siemens, Germany is a low-power remote terminal unit RTU for energy self-sufficiency. A vulnerability in the...

Netgear NETGEAR JGS516PE 安全漏洞

The NETGEAR JGS516PE/GS116Ev2 is a 16-port Gigabit Smart Managed Plus switch. A security vulnerability exists in the NETGEAR JGS516PE/GS116Ev2 version 2.6.0.43. The vulnerability stems from the failure of the NSDP protocol implementation to properly validate the length of string parameters sent i...

The vulnerability of the Linux operating system’s kernel allows a hacker to gain unauthorized access to protected information.

The vulnerability of Linux operating system kernels is related to ICMP packet inspection errors. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to protected information by bypassing the UDP port randomization mechanism...

PT-2020-6869 · D Link · D-Link Dir-878 +2

Name of the Vulnerable Software and Affected Versions: D-Link DIR-867-US, DIR-878, DIR-882-US versions 1.20B10 BETA Description: The issue is related to the implementation of the HNAP protocol in the firmware of D-Link routers, which allows an attacker to bypass authentication procedures by...

The vulnerability of the NTLMv1 network protocol implementation in the embedded software of Balt-System NC series numerical control systems allows a hacker to obtain information about the operator’s account credentials.

The vulnerability of the NTLMv1 network protocol implementation in the built-in software of Balt-System NC numerical control systems is related to a reversible one-way hash function. Exploiting this vulnerability can allow an attacker, operating remotely, to obtain information about the operator’...

The vulnerability of the iOS operating system allows a perpetrator to initiate TCP connections with nodes within the internal network.

The vulnerability of the CFNetwork FTP Protocol component in the iOS operating system is related to errors in the code. Exploiting this vulnerability allows a malicious actor to initiate TCP connections with internal network nodes using specially crafted responses to requests...

CentOS Update for kernel CESA-2014:0285 centos5

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-1939-1: Linux kernel vulnerabilities

Vasily Kulikov discovered a flaw in the Linux Kernel's perf tool that allows for privilege escalation. A local user could exploit this flaw to run commands as root when using the perf tool. CVE-2013-1060 Michael S. Tsirkin discovered a flaw in how the Linux kernel's KVM subsystem allocates memory...